Home | History | Annotate | Download | only in articles

Lines Matching full:attestation

1 page.title=Key Attestation
3 page.keywords="security", "TEE", "hardware-backed", "keystore", "certificate", "key attestation"
18   Key Attestation gives you more confidence that the keys you use in your app
21   interpret the schema of the attestation certificate's extension data.
26   level 24) support hardware-level key attestation; all other devices running
27   Android 7.0 use software-level key attestation instead. Before you verify the
30   attestation. To do so, you should check that the attestation certificate chain
31   contains a root certificate that is signed by the Google attestation root key
42   During key attestation, you specify the alias of a key pair. The attestation
48   If the device supports hardware-level key attestation, the root certificate
49   within this chain is signed using an attestation root key, which the device
56   attestation, Android 7.0 (API level 24), and Google Play services, the root
57   certificate is signed by the Google attestation root key. You should verify
62   To implement key attestation, complete the following steps:
89       Create an <code>Attestation</code> object, passing in the first element of
96 Attestation hardwareKeyAttestation = new Attestation(attestationCert);
100       An attestation object extracts the extension data within this certificate
109       Use the accessor methods within the <code>Attestation</code> class to
121 // "hardwareKeyAttestation" contains the first element of the attestation
132       Compare the extension data from the <code>Attestation</code> object with
149   Key attestation verifies the extension data that appears in the first
222   verified through key attestation and provides easy access to additional
232     The version of the key attestation feature. Should be set to 1.
242       level</a> of the attestation.
278     attestation.
395       attestation, this value is always <code>KM_ALGORITHM_RSA</code> or
505       attestation, this value is always true.
550       attestation, this value is always true.
570       attestation, this value is always true.
609       attestation, this value is usually set to
610       <code>KM_ORIGIN_GENERATED</code>. If the attestation uses Keymaster
717       The unique ID of the attestation certificate that signed the key pair
858     Indicates that the device has failed verification. The attestation